$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141621.roa File: AS141621.roa (raw, json) Hash identifier: mdswDxxZhze6WWHZIgXGZgNnuDYANb5qNLLjLkDhfm0= Subject key identifier: 0F:14:BF:14:AE:5D:DF:3A:2E:4D:2D:FD:B0:7F:EF:F0:1E:8F:21:53 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B76823AEB62F8DD7FF64DE427B92B4AE21D2B16 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141621.roa Signing time: Tue 09 Jan 2024 04:00:09 +0000 ROA not before: Tue 09 Jan 2024 03:55:09 +0000 ROA not after: Tue 07 Jan 2025 04:00:09 +0000 asID: 141621 IP address blocks: 103.161.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:76:82:3a:eb:62:f8:dd:7f:f6:4d:e4:27:b9:2b:4a:e2:1d:2b:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:09 2024 GMT Not After : Jan 7 04:00:09 2025 GMT Subject: CN=0F14BF14AE5DDF3A2E4D2DFDB07FEFF01E8F2153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:15:49:da:37:e5:ee:5a:67:91:b9:95:78:ce: 4a:ad:ed:71:fe:c1:b9:d3:56:c8:3c:5e:05:64:b4: 01:d6:40:90:c7:f8:60:f5:2f:82:bb:05:40:fe:a8: 89:2d:6c:a9:d5:31:47:53:51:67:90:8d:b4:17:48: f6:9b:a1:ae:a3:2f:0e:14:4f:9a:06:f3:ca:f2:ce: ee:20:a9:92:99:d4:c8:07:91:1b:c1:d8:85:e0:5c: d4:f7:d3:28:e2:c6:c0:59:62:4d:17:a8:be:b8:76: 79:00:20:02:dd:46:5e:cf:11:f4:c8:01:38:66:84: 1b:a0:d0:4f:19:60:0c:00:02:48:6d:82:de:20:00: 03:34:f2:48:0c:70:1c:75:b2:56:54:37:09:a0:3e: b9:f5:12:f1:5c:03:64:06:68:cd:44:42:a7:d2:03: f9:71:3e:c0:88:be:7c:69:b3:9d:bc:e3:5a:19:e1: a9:60:a0:7e:ef:60:8c:97:a8:bf:3d:bf:85:87:62: 4b:16:a9:07:55:08:69:61:9a:c9:84:96:95:a4:8b: 90:d1:e6:08:0a:e3:aa:d5:d1:60:20:dc:f9:3c:2b: a7:56:f8:a9:18:61:34:39:77:e0:97:e2:46:12:0d: 60:7e:a5:72:d0:26:49:cd:7e:db:16:58:33:f5:c4: d8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:14:BF:14:AE:5D:DF:3A:2E:4D:2D:FD:B0:7F:EF:F0:1E:8F:21:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141621.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.164.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:e7:04:ce:59:4f:79:3d:2b:6f:d3:47:03:7f:ac:a1:3b:fb: 43:f7:37:b5:97:ec:9c:f0:41:9c:04:84:78:26:7f:9c:7b:75: 90:e1:3c:f5:89:82:a4:e8:2f:53:24:e9:b2:fa:c4:e4:3f:cf: f9:eb:01:64:f9:69:c1:fa:88:0d:82:6c:ba:44:e4:ae:d4:45: 7a:06:8e:f1:15:82:cd:5c:ac:f6:ce:6a:78:fa:db:5b:51:cb: e8:6c:1c:99:ed:2e:4c:31:c8:21:72:a1:08:22:7c:a9:30:e9: 63:dd:e2:d3:0f:53:db:f6:38:67:da:99:36:72:b0:1a:49:b4: 20:1c:e1:9d:9d:56:ce:15:9a:ed:3e:54:fc:c6:94:90:3b:98: cd:89:5c:5f:67:32:c8:fc:82:1d:1f:c2:20:51:72:3b:54:f2: 73:e7:87:03:89:0d:74:f0:02:e9:7a:85:dd:da:ec:5c:33:36: b7:7c:50:f4:f4:d5:ef:fc:9b:51:7a:dc:c0:07:82:54:b7:e2: 57:46:b7:48:d5:55:d8:d0:4b:6b:13:ec:04:8d:4f:2f:a4:21: 6d:14:90:2f:7e:14:3c:e5:d9:d8:80:17:fd:1e:eb:25:64:e3: c3:1a:9a:7d:e3:55:e1:bf:27:d8:cf:1b:17:3a:cb:40:a6:7c: a1:2e:46:fa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUS3aCOuti+N1/9k3kJ7krSuIdKxYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwOVoX DTI1MDEwNzA0MDAwOVowMzExMC8GA1UEAxMoMEYxNEJGMTRBRTVEREYzQTJFNEQy REZEQjA3RkVGRjAxRThGMjE1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoVSdo35e5aZ5G5lXjOSq3tcf7BudNWyDxeBWS0AdZAkMf4YPUvgrsFQP6o iS1sqdUxR1NRZ5CNtBdI9puhrqMvDhRPmgbzyvLO7iCpkpnUyAeRG8HYheBc1PfT KOLGwFliTReovrh2eQAgAt1GXs8R9MgBOGaEG6DQTxlgDAACSG2C3iAAAzTySAxw HHWyVlQ3CaA+ufUS8VwDZAZozURCp9ID+XE+wIi+fGmznbzjWhnhqWCgfu9gjJeo vz2/hYdiSxapB1UIaWGayYSWlaSLkNHmCArjqtXRYCDc+Twrp1b4qRhhNDl34Jfi RhINYH6lctAmSc1+2xZYM/XE2AUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQPFL8U rl3fOi5NLf2wf+/wHo8hUzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWehpDANBgkqhkiG9w0BAQsFAAOCAQEAfucEzllPeT0rb9NHA3+s oTv7Q/c3tZfsnPBBnASEeCZ/nHt1kOE89YmCpOgvUyTpsvrE5D/P+esBZPlpwfqI DYJsukTkrtRFegaO8RWCzVys9s5qePrbW1HL6Gwcme0uTDHIIXKhCCJ8qTDpY93i 0w9T2/Y4Z9qZNnKwGkm0IBzhnZ1WzhWa7T5U/MaUkDuYzYlcX2cyyPyCHR/CIFFy O1Tyc+eHA4kNdPAC6XqF3drsXDM2t3xQ9PTV7/ybUXrcwAeCVLfiV0a3SNVV2NBL axPsBI1PL6QhbRSQL34UPOXZ2IAX/R7rJWTjwxqafeNV4b8n2M8bFzrLQKZ8oS5G +g== -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org